Cross-site scripting (XSS) vulnerability in XHProf prior to 0.9.4 allows remote malicious users to inject arbitrary web script or HTML via the run parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php xhprof |
||
php xhprof 0.9.2 |
||
php xhprof 0.9.1 |
||
php xhprof 0.9.0 |